Aws Domain Controller

Comments

7 comments

  • Luke Nichols

    Shan,

    Do you have admin shares disabled on your laptop?

    1
    Comment actions Permalink
  • shan khan

    Hi Luke,

    thank you so much for replying, its enabled in our laptop, the only thing which comes to my mind is as the domain controller is in the cloud may be laptop can reach the controller but the controller cant reach laptop so thats why?

    1
    Comment actions Permalink
  • Luke Nichols

    Shan,

    Did you install PDQ on your domain controller? I will say that is not exactly best practice but it might be ok for your environment if it's just a quick test.

    Does your AWS domain controller have a public IP address or do you reach it via NAT or a reverse proxy or something like that?

    0
    Comment actions Permalink
  • shan khan

    HI Luke,

    Ohhh i didnt know that , well at the moment it was just a test to install on domain controller, yes my domain server has a public ip

     

    thank you

    0
    Comment actions Permalink
  • Nick Simpson

    shan khan were you successful in getting this working? We're in the middle of setting up AWS Managed AD and I was hoping to get licenses for PDQ Deploy and Inventory as I used them at my previous job and loved the software for automation.

     

    Please let me know as we don't have any on prem Active Directory at all.

     

    Shane Brigg Angus Lex Hansen @... - any input from you would be most welcome :-)

    0
    Comment actions Permalink
  • Chris Lambert

    If you are working through public IPs, are you opening the proper ports in AWS to get to your server?  How about on your site's firewall?  That is unless it is a site-site vpn between AWS and your office

    Look here for port info for PDQ:  https://help.pdq.com/hc/en-us/articles/220533627-Windows-Firewall-Ports-and-Exceptions

     

    0
    Comment actions Permalink
  • Colby Bouma

    I've never used AWS AD, but I suspect you might be running into the same issue as Azure AD. Credentials need to be able to run as a service for our applications to work, including the Deploy/Scan user. As far as I am aware, it is not currently possible to run services with Azure AD accounts. This is a Windows limitation, not a Deploy/Inventory one.

    0
    Comment actions Permalink

Please sign in to leave a comment.